Hello Adrien, thanks for raising this to our attention. We have made "deactivated" the default because as a general rule, we deem it much riskier security-wise for someone's access to be unintentionally granted than to be unintentionally denied. Furt...

That said, you may be able to generate the correct certs using OpenSSL only -- I use it for lab setups very frequently, and so far I've never run into any certificate attributes that could not be simulated using OpenSSL. You mentioned trouble with al...

You're welcome. The GnuTLS source code seems to indicate that the encoding of an RSA public key happens in _gnutls_x509_write_rsa_params() within lib/x509/mpi.c, and there is a slight difference between 2.8.5 and 2.10.0 (note: I picked a later versio...

IOS also gives an encoding error when importing the PKCS#12:CRYPTO_PKI: status = 0x701(E_BER_ENCODING : invalid encoding format for input data): Imported PKCS12 file failure however the PKCS#12 itself is fine; the problem is with the certificates in ...